CVE Catalog

CVE-2026-12112

HighCVSS 7.8
Published: Updated: Translated: NVD NIST

Exploitation Probability (EPSS)

Low risk
0.15%

5th percentile — higher than 5% of all known CVEs

Summary

A session management vulnerability was found in the foreman-mcp-server. Unauthenticated attackers can hijack active administrative sessions due to improper caching of authenticated client connections, trusting a non-secret session ID without re-validating authentication tokens, and logging all newly created session IDs to standard logs.

Risk Assessment

This vulnerability allows privilege escalation and infrastructure-wide code execution, potentially leading to full compromise of the management system.

Recommendation

Immediately update foreman-mcp-server to the latest patched version and implement re-validation of authentication tokens for every session request.

Original NVD description (English source)

A flaw was found in the foreman-mcp-server. A session management vulnerability in the MCP Server allows unauthenticated attackers to hijack active administrative sessions due to an improper cache of authenticated client connections, by trusting a non-secret session ID without re-validating authentication tokens and by logging all newly created session IDs to standard logs. This issue can result in privilege escalation and infrastructure-wide code execution.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS